5
CVE-2000-1032
- EPSS 1.81%
- Veröffentlicht 11.12.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:00
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The client authentication interface for Check Point Firewall-1 4.0 and earlier generates different error messages for invalid usernames versus invalid passwords, which allows remote attackers to identify valid usernames on the firewall.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Checkpoint ≫ Firewall-1 Version3.0
Checkpoint ≫ Firewall-1 Version4.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.81% | 0.758 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://www.osvdb.org/1632
http://www.securityfocus.com/archive/1/142808
http://www.securityfocus.com/bid/1890
https://exchange.xforce.ibmcloud.com/vulnerabilities/5816